A Geek With Guns

Discount security adviser to the proles.

MySQL Compromised by SQL Injection

without comments

This is comedy gold. MySQL.com’s database was compromised yesterday (at least that’s when the story was published) by somebody who used an SQL injection attack:

MySQL offers database software and services for businesses at an enterprise level as well as services for online retailers, web forums and even governments. The vulnerability for the attack, completed using blind SQL injection and targeted servers including MySQL.com, MySQL.fr, MySQL.de and MySQL.it, was initially found by “TinKode” and “Ne0h” of Slacker.Ro (according to their pastebin.com/BayvYdcP dump of the stolen credentials) but published by “Jackh4x0r”.

Oh delicious irony how I love thee.

Written by Christopher Burg

March 28th, 2011 at 10:30 am

Posted in Technology

Tagged with , ,